The Case for Centralizing Authorization

This whitepaper explores the business and technical reasons for centralizing authorization. We discuss the headwinds that organizations face when treating authorization as a central concern:

  • Expressivity
  • Performance
  • Isolation
  • Integration

Most importantly, we explore solutions that help organizations overcome these headwinds.

Get the whitepaper!

Manage authorization centrally for every one of your applications, while enforcing access control in milliseconds, right next to the application.

Fine-grained, real-time access control made easy

Support RBAC, ABAC, and ReBAC out of the box. Enforce in millisecond latency and with high availability

allowed { input.user.properties.dept == "Sales" }
Use any user-centric attributes in your policies

The best of OPA and Zanzibar

Topaz is an open-source authorization system that allows you to combine RBAC, ABAC, and ReBAC as you see fit.

Topaz OSS authorizer

Centralized authorization system

Aserto is a unified access control system for your applications, services, and APIs

Centralized authorization system
Lottie

Authorization as easy as an API call

Get started freeSpeak with an engineer